Twitter | Pretraživanje | |
Adam 'pi3' Zabrocki
Nobody
215
Tweetovi
134
Pratim
957
Osobe koje vas prate
Tweetovi
Adam 'pi3' Zabrocki 21. sij
Odgovor korisniku/ci @gamozolabs @a13xp0p0v
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 9. sij
Odgovor korisniku/ci @depletionmode
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki proslijedio/la je tweet
Solar Designer 8. sij
Odgovor korisniku/ci @andreyknvl @Adam_pi3
As far as I see, we did comment on all of the bypasses seen in that repo so far, on the lkrg-users mailing list. We also addressed many of these in newer LKRG. Now that Ilya collected the bypasses so nicely in that repo, we should perhaps also collect our commentary in one place.
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki proslijedio/la je tweet
Openwall 25. pro
passwdqc 1.4.0, a new version of our password/passphrase strength checking and enforcement tool set, is out. This version adds optional non-English messages, Linux-PAM audit support, and includes portability and documentation fixes:
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 14. pro
Odgovor korisniku/ci @bsdaemon @IntelSTORMTeam
Good Luck and... congrats? :)
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 4. pro
Odgovor korisniku/ci @uid1000 @grsecurity
In case of hypothetical more privileged true-RO owned page (which I was referring to as a way to protect such a buffers), CR0.WP won't have any effect since they won't be the owner of the page - just have visibility of it / mapping.
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 4. pro
Odgovor korisniku/ci @grsecurity @uid1000
One way to protect it is to have true-RO enforced from different trustlevel (ring -1 / TZ?) and use it to protect such buffers. For desired modification invoke hypercall and do necessary modification on behalf from the secure zone (ring -1 / TZ).
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 4. pro
Odgovor korisniku/ci @grsecurity @uid1000
Locking down group b) and c) is problematic from the compatibility point of view since you can kill desired functionality. Group d) can be removed if we don't need with mcelog daemon which can be for some people unacceptable. Nevertheless, there is a lot of potential targets.
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 4. pro
Odgovor korisniku/ci @grsecurity @uid1000
My 2 cents, attacking UMH is well known but also problematic for defense. For LKRG UMH whitelisting I've went trough the all UMH consumers and identify 4 groups of them: a) can be hardcoded b) can be changed via sysctl / procfs interface c) can be set via module param d) mcelog
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 3. pro
Odgovor korisniku/ci @carste1n @hasherezade @lcamtuf
Ah "kendo marxist" ;-) You are another Polish friend from Google whom I know and is beating people with bamboo stick. I hope it's just a coincidence... :P
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 3. pro
Odgovor korisniku/ci @carste1n @hasherezade @lcamtuf
What's your hobby in CV? :>
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki proslijedio/la je tweet
Hardened-GNU/Linux 19. stu
Linux Kernel Runtime Guard (LKRG) on Whonix
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki proslijedio/la je tweet
Whonix ™ 15. stu
🔥🔥🔥 🔥🔥🔥 🔥🔥🔥 Innovate security feature. It renders whole classes of kernel exploits ineffective. Learn more: 🔥🔥🔥
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki proslijedio/la je tweet
Whonix ™ 11. stu
Kernel Runtime Guard () - Linux Kernel Runtime Integrity Checking and Detection. Work on packaging for and has started.
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki proslijedio/la je tweet
Alex Matrosov 6. stu
I’m thrilled to announce we are growing our offensive security research team. I want to welcome and to Nvidia!!
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki proslijedio/la je tweet
Alexander Popov 2. stu
I just did the full disclosure of the exploitable bugs in the 'vivid' driver of the Linux kernel:
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 1. stu
Odgovor korisniku/ci @JosephBialek
I am, but sometimes I need a break ;p
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 31. lis
I was able to run Linux Kernel Runtime Guard () on raspberry pi 3 (model B). Very beta version support for ARM32 might be coming. Took me some time but it's possible and works fine.
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 10. lis
Odgovor korisniku/ci @JosephBialek
lol, smart decision! :)
Reply Retweet Označi sa "sviđa mi se"
Adam 'pi3' Zabrocki 10. lis
Odgovor korisniku/ci @jvanegue
Thanks ;-)
Reply Retweet Označi sa "sviđa mi se"